====================================================== WARNING: the mand mount option is being deprecated and will be removed in v5.15! ====================================================== BUG: Bad page state in process syz-executor.1 pfn:ab8d0 page:ffffea0002ae3400 count:0 mapcount:0 mapping: (null) index:0x2f flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff raw: ffffea00025a73a0 ffffea0002a95ca0 ffff8880a98bb3c0 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 1 PID: 13656 Comm: syz-executor.1 Not tainted 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.1 pfn:969ce page:ffffea00025a7380 count:0 mapcount:0 mapping: (null) index:0x2e flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff raw: ffffea0002ab9260 ffffea0002ae3420 ffff8880a98bb4b0 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 1 PID: 13656 Comm: syz-executor.1 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.1 pfn:aae49 page:ffffea0002ab9240 count:0 mapcount:0 mapping: (null) index:0x2d flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff raw: ffffea0002d2e460 ffffea00025a73a0 ffff8880a98bb5a0 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 1 PID: 13656 Comm: syz-executor.1 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 ERROR: (device loop1): txAbort: BUG: Bad page state in process syz-executor.1 pfn:aa0cd page:ffffea0002a83340 count:0 mapcount:0 mapping: (null) index:0x2f flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff raw: ffffea0002afae20 ffffea0002a84160 ffff8880abfc1e10 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 0 PID: 13687 Comm: syz-executor.1 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.1 pfn:abeb8 page:ffffea0002afae00 count:0 mapcount:0 mapping: (null) index:0x2e flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff raw: ffffea0002c44160 ffffea0002a83360 ffff8880abfc1f00 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 0 PID: 13687 Comm: syz-executor.1 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.1 pfn:b1105 page:ffffea0002c44140 count:0 mapcount:0 mapping: (null) index:0x2d flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff raw: ffffea00028c4160 ffffea0002afae20 ffff8880b5779f00 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 0 PID: 13687 Comm: syz-executor.1 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 8021q: adding VLAN 0 to HW filter on device team0 ERROR: (device loop2): txAbort: BUG: Bad page state in process syz-executor.2 pfn:8f10e page:ffffea00023c4380 count:0 mapcount:0 mapping: (null) index:0x2f flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff raw: ffffea000246eca0 ffffea000284ac20 ffff88809f4afc30 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 0 PID: 13697 Comm: syz-executor.2 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7ff86069d5a9 RSP: 002b:00007ff85f011168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007ff8607bef80 RCX: 00007ff86069d5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007ff8606f8580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffc546813ef R14: 00007ff85f011300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.2 pfn:91bb2 page:ffffea000246ec80 count:0 mapcount:0 mapping: (null) index:0x2e flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff raw: ffffea0002857f20 ffffea00023c43a0 ffff88809f4afd20 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 0 PID: 13697 Comm: syz-executor.2 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7ff86069d5a9 RSP: 002b:00007ff85f011168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007ff8607bef80 RCX: 00007ff86069d5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007ff8606f8580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffc546813ef R14: 00007ff85f011300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.2 pfn:a15fc page:ffffea0002857f00 count:0 mapcount:0 mapping: (null) index:0x2d flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff raw: ffffea00029717a0 ffffea000246eca0 ffff88809f4afe10 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 0 PID: 13697 Comm: syz-executor.2 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7ff86069d5a9 RSP: 002b:00007ff85f011168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007ff8607bef80 RCX: 00007ff86069d5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007ff8606f8580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffc546813ef R14: 00007ff85f011300 R15: 0000000000022000 ERROR: (device loop1): txAbort: bond0: Enslaving team0 as an active interface with an up link BUG: Bad page state in process syz-executor.1 pfn:a67de page:ffffea000299f780 count:0 mapcount:0 mapping: (null) index:0x2f flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff raw: ffffea0002955620 ffffea000285d860 ffff88809e3c6f00 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 0 PID: 13702 Comm: syz-executor.1 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.1 pfn:a5558 page:ffffea0002955600 count:0 mapcount:0 mapping: (null) index:0x2e flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff raw: ffffea000295f020 ffffea000299f7a0 ffff88809f4af000 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 0 PID: 13702 Comm: syz-executor.1 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.1 pfn:a57c0 page:ffffea000295f000 count:0 mapcount:0 mapping: (null) index:0x2d flags: 0xfff0000000100c(referenced|uptodate|private) bond0: Releasing backup interface team0 raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff raw: ffffea000286e8a0 ffffea0002955620 ffff88809f4af0f0 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 0 PID: 13702 Comm: syz-executor.1 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 bridge0: port 3(team0) entered blocking state bridge0: port 3(team0) entered disabled state device team0 entered promiscuous mode device team_slave_0 entered promiscuous mode device team_slave_1 entered promiscuous mode device team0 left promiscuous mode device team_slave_0 left promiscuous mode device team_slave_1 left promiscuous mode ERROR: (device loop1): txAbort: BUG: Bad page state in process syz-executor.1 pfn:a9357 page:ffffea0002a4d5c0 count:0 mapcount:0 mapping: (null) index:0x2f bridge0: port 3(team0) entered disabled state flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff 8021q: adding VLAN 0 to HW filter on device team0 raw: ffffea0001871160 ffffea0002aa22e0 ffff8880a6c4da50 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set ERROR: (device loop2): txAbort: 9pnet: Insufficient options for proto=fd bad because of flags: 0x1000(private) bond0: Enslaving team0 as an active interface with an up link BUG: Bad page state in process syz-executor.2 pfn:a1d09 Modules linked in: CPU: 0 PID: 13737 Comm: syz-executor.1 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 8021q: adding VLAN 0 to HW filter on device team0 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 bond0: Enslaving team0 as an active interface with an up link do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 page:ffffea0002874240 count:0 mapcount:0 mapping: (null) index:0x2f SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 flags: 0xfff0000000100c(referenced|uptodate|private) RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.1 pfn:61c45 bond0: Releasing backup interface team0 page:ffffea0001871140 count:0 mapcount:0 mapping: (null) index:0x2e raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff raw: ffffea0002837220 ffffea0002454f60 ffff888091ff7870 0000000000000000 flags: 0xfff0000000100c(referenced|uptodate|private) page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff bad because of flags: 0x1000(private) bridge0: port 3(team0) entered blocking state Modules linked in: raw: ffffea00028ee5e0 ffffea0002a4d5e0 ffff8880a6c4db40 0000000000000000 bridge0: port 3(team0) entered disabled state CPU: 1 PID: 13769 Comm: syz-executor.2 Tainted: G B 4.14.295-syzkaller #0 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 device team0 entered promiscuous mode free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 device team_slave_0 entered promiscuous mode release_pages+0x828/0xbf0 mm/swap.c:820 bad because of flags: 0x1000(private) __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 device team_slave_1 entered promiscuous mode jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 Modules linked in: do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7ff86069d5a9 RSP: 002b:00007ff85f011168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007ff8607bef80 RCX: 00007ff86069d5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007ff8606f8580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffc546813ef R14: 00007ff85f011300 R15: 0000000000022000 bond0: Releasing backup interface team0 syz-executor.5 (13736) used greatest stack depth: 24040 bytes left bridge0: port 3(team0) entered blocking state CPU: 1 PID: 13737 Comm: syz-executor.1 Tainted: G B 4.14.295-syzkaller #0 bridge0: port 3(team0) entered disabled state Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.1 pfn:a3b97 device team0 entered promiscuous mode page:ffffea00028ee5c0 count:0 mapcount:0 mapping: (null) index:0x2d 9pnet: Insufficient options for proto=fd flags: 0xfff0000000100c(referenced|uptodate|private) device team_slave_0 entered promiscuous mode raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff device team_slave_1 entered promiscuous mode raw: ffffea0002842160 ffffea0001871160 ffff8880a6c4dc30 0000000000000000 syz-executor.3 (13732) used greatest stack depth: 23824 bytes left page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: BUG: Bad page state in process syz-executor.2 pfn:a0dc8 CPU: 0 PID: 13737 Comm: syz-executor.1 Tainted: G B 4.14.295-syzkaller #0 page:ffffea0002837200 count:0 mapcount:0 mapping: (null) index:0x2e Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff release_pages+0x828/0xbf0 mm/swap.c:820 raw: ffffea0002b039e0 ffffea0002874260 ffff888091ff7960 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set __pagevec_release+0x84/0xe0 mm/swap.c:837 bad because of flags: 0x1000(private) pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 Modules linked in: jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7fec792915a9 RSP: 002b:00007fec77c05168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007fec793b2f80 RCX: 00007fec792915a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007fec792ec580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff970bf72f R14: 00007fec77c05300 R15: 0000000000022000 CPU: 1 PID: 13769 Comm: syz-executor.2 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 9pnet: Insufficient options for proto=fd SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7ff86069d5a9 RSP: 002b:00007ff85f011168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007ff8607bef80 RCX: 00007ff86069d5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007ff8606f8580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffc546813ef R14: 00007ff85f011300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.2 pfn:ac0e7 page:ffffea0002b039c0 count:0 mapcount:0 mapping: (null) index:0x2d device team0 left promiscuous mode device team_slave_0 left promiscuous mode device team_slave_1 left promiscuous mode flags: 0xfff0000000100c(referenced|uptodate|private) bridge0: port 3(team0) entered disabled state raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff 9pnet: Insufficient options for proto=fd raw: ffffea0002843da0 ffffea0002837220 ffff888091ff7a50 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) 8021q: adding VLAN 0 to HW filter on device team0 Modules linked in: CPU: 0 PID: 13769 Comm: syz-executor.2 Tainted: G B 4.14.295-syzkaller #0 bond0: Enslaving team0 as an active interface with an up link Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: device team0 left promiscuous mode __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 device team_slave_0 left promiscuous mode __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 device team_slave_1 left promiscuous mode bridge0: port 3(team0) entered disabled state jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7ff86069d5a9 RSP: 002b:00007ff85f011168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007ff8607bef80 RCX: 00007ff86069d5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007ff8606f8580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffc546813ef R14: 00007ff85f011300 R15: 0000000000022000 8021q: adding VLAN 0 to HW filter on device team0 bond0: Enslaving team0 as an active interface with an up link bond0: Releasing backup interface team0 bridge0: port 3(team0) entered blocking state bridge0: port 3(team0) entered disabled state device team0 entered promiscuous mode device team_slave_0 entered promiscuous mode device team_slave_1 entered promiscuous mode bond0: Releasing backup interface team0 bridge0: port 3(team0) entered blocking state bridge0: port 3(team0) entered disabled state syz-executor.3 (13790) used greatest stack depth: 23808 bytes left device team0 entered promiscuous mode device team_slave_0 entered promiscuous mode device team_slave_1 entered promiscuous mode device team0 left promiscuous mode device team_slave_0 left promiscuous mode device team_slave_1 left promiscuous mode bridge0: port 3(team0) entered disabled state 8021q: adding VLAN 0 to HW filter on device team0 bond0: Enslaving team0 as an active interface with an up link bond0: Releasing backup interface team0 bridge0: port 3(team0) entered blocking state bridge0: port 3(team0) entered disabled state device team0 entered promiscuous mode device team_slave_0 entered promiscuous mode device team_slave_1 entered promiscuous mode device team0 left promiscuous mode device team_slave_0 left promiscuous mode device team_slave_1 left promiscuous mode bridge0: port 3(team0) entered disabled state 8021q: adding VLAN 0 to HW filter on device team0 bond0: Enslaving team0 as an active interface with an up link 9pnet: Insufficient options for proto=fd bond0: Releasing backup interface team0 bridge0: port 3(team0) entered blocking state bridge0: port 3(team0) entered disabled state device team0 entered promiscuous mode device team_slave_0 entered promiscuous mode 9pnet: Insufficient options for proto=fd device team_slave_1 entered promiscuous mode 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd overlayfs: fs on './file0' does not support file handles, falling back to index=off. EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue overlayfs: fs on './file0' does not support file handles, falling back to index=off. EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue